New Advisory Request
Package: dstack
Ecosystem: pip (PyPI)
Affected versions: <= 0.19.5
CWE: CWE-78 (OS Command Injection)
Severity: High (CVSS 8.8)
Repository: https://github.com/dstackai/dstack
Related to issue #8178 (different vector, different code path).
Summary
RCE via git ext:: protocol injection in project templates configuration. The validation function itself triggers the payload during URL verification. Any authenticated user can escalate to server-level code execution.
Notes
- dstackai/dstack does not have Private Vulnerability Reporting enabled.
- No SECURITY.md or security contact published.
- Full technical details, affected file/lines, and PoC available through private channel. Please enable PVR or provide a security contact.
New Advisory Request
Package: dstack
Ecosystem: pip (PyPI)
Affected versions: <= 0.19.5
CWE: CWE-78 (OS Command Injection)
Severity: High (CVSS 8.8)
Repository: https://github.com/dstackai/dstack
Related to issue #8178 (different vector, different code path).
Summary
RCE via git
ext::protocol injection in project templates configuration. The validation function itself triggers the payload during URL verification. Any authenticated user can escalate to server-level code execution.Notes